AbstractThis paper presents our solutions to some problems we encountered in an ongoing attempt to verify the micro-hypervisor currently developed within the Robin project. The problems that we discuss are (1) efficient automatic reasoning for type-correct programs in virtual memory, and (2) modeling memory-mapped devices with alignment requirements. The discussed solutions are integrated in our verification environment for operating-system kernels in the interactive theorem prover PVS. This verification environment will ultimately be used for the verification of the Robin micro-hypervisor. As a proof of concept we include an example verification of a very simple piece of code in our environment
Weak memory models formalize the unexpected behavior that one can expect to observe in multi-threade...
We describe the formal verification of a hardware subsystem consisting of a memory management unit a...
Hypervisors are system software programs that virtualize the architecture they run on and are usuall...
AbstractThis paper presents our solutions to some problems we encountered in an ongoing attempt to v...
AbstractPrimitives are basic means provided by a microkernel to implementors of operating system ser...
AbstractCVM (communicating virtual machines) is a computational model for concurrent user processes ...
Abstract. One of the challenges in verifying systems level code is the low-level, untyped view of th...
Abstract. We report on the first formal pervasive verification of an op-erating system microkernel f...
Abstract. Primitives are basic means provided by a microkernel to im-plementors of operating system ...
In this thesis we address the challenges of hypervisor verification for multicore processors. As a f...
Hypervisors are a popular mechanism for implementing software virtualization. Since hypervisors exec...
Part 3: VerificationInternational audienceMemory safety plays a crucial role in concurrent hardware/...
Abstract. From 2007 to 2010, researchers from Microsoft and the Verisoft XT project verified code fr...
The authors introduce basic virtual-memory technologies and then compare memory-management designs i...
VirtualCert is a machine-checked model of virtualization that can be used to reason about isolation ...
Weak memory models formalize the unexpected behavior that one can expect to observe in multi-threade...
We describe the formal verification of a hardware subsystem consisting of a memory management unit a...
Hypervisors are system software programs that virtualize the architecture they run on and are usuall...
AbstractThis paper presents our solutions to some problems we encountered in an ongoing attempt to v...
AbstractPrimitives are basic means provided by a microkernel to implementors of operating system ser...
AbstractCVM (communicating virtual machines) is a computational model for concurrent user processes ...
Abstract. One of the challenges in verifying systems level code is the low-level, untyped view of th...
Abstract. We report on the first formal pervasive verification of an op-erating system microkernel f...
Abstract. Primitives are basic means provided by a microkernel to im-plementors of operating system ...
In this thesis we address the challenges of hypervisor verification for multicore processors. As a f...
Hypervisors are a popular mechanism for implementing software virtualization. Since hypervisors exec...
Part 3: VerificationInternational audienceMemory safety plays a crucial role in concurrent hardware/...
Abstract. From 2007 to 2010, researchers from Microsoft and the Verisoft XT project verified code fr...
The authors introduce basic virtual-memory technologies and then compare memory-management designs i...
VirtualCert is a machine-checked model of virtualization that can be used to reason about isolation ...
Weak memory models formalize the unexpected behavior that one can expect to observe in multi-threade...
We describe the formal verification of a hardware subsystem consisting of a memory management unit a...
Hypervisors are system software programs that virtualize the architecture they run on and are usuall...